5
Background:
I had experimented with nginx's proxy caching mechanisms one night to see if I could speed up a very slow website for a friend of mine -- this experiment went on late into the night, at what point I concluded it wasn't a viable option for what he wanted to do.
I forgot to disable the nginx proxy config and sometime later it was picked up by someone that they could use it to proxy all their requests via my server, without my noticing. It ran for about 3 months like this before I noticed and put an end to it.
So now I have a 6.7GB apache style log file, with >20 million entries that show over 180GB of traffic used for illicit purposes, showing the date, source IP and destination request.
What can I do with this that could be of benefit to the general internet community? Or is it useless?
Is it safe to publish it, or could that get me in trouble legally somehow? Are there any spam research centres who might benefit from it?
Edit: Just to clarify, the log is entirely that of the proxy'd requests.
Good points there. I'm tempted to see if I can categorize some of the types attacks and graph these. I think that would be a way of release it to the curious without actually disclosing any private data... – Tim Kersten – 2011-10-06T20:40:19.737
2You cannot "unsee" what you have seen. I wouldn't touch this data, not even look at it, or process it, or copy it... Having links to, for example, child porn, sprinkled on your hard disk is a bad thing if police turns up with a search order one day. You'll have hard time explaining what you were doing exactly. – haimg – 2011-10-06T21:05:25.647
Hmm, fair point. I'll keep that in mind as I think about it. Thanks – Tim Kersten – 2011-10-06T21:23:14.597